{"id":112704,"date":"2023-07-25T16:23:00","date_gmt":"2023-07-25T13:23:00","guid":{"rendered":"https:\/\/elementor.com\/blog\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/"},"modified":"2025-12-01T13:17:47","modified_gmt":"2025-12-01T11:17:47","slug":"redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account","status":"publish","type":"post","link":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/","title":{"rendered":"Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)"},"content":{"rendered":"\n<p>In deze stap-voor-stap handleiding leren we hoe we SSO-authenticatie kunnen instellen met Redshift en AWS IAM Identity Center om de beveiliging te verbeteren en de toegang voor gebruikers eenvoudiger te maken.<\/p>\n\n<figure class=\"wp-block-image size-full\"><img fetchpriority=\"high\" decoding=\"async\" width=\"751\" height=\"161\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Redshift-SSO.drawio.png\" alt=\"\" class=\"wp-image-85731\" \/><\/figure>\n\n<h3 class=\"wp-block-heading\" id=\"Used-Sources:\">Gebruikte bronnen:<\/h3>\n\n<ul class=\"wp-block-list\"><li><a href=\"https:\/\/aws.amazon.com\/blogs\/big-data\/federated-authentication-to-amazon-redshift-using-aws-single-sign-on\/\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/aws.amazon.com\/blogs\/big-data\/federated-authentication-to-amazon-redshift-using-aws-single-sign-on\/<\/a><\/li><li><a href=\"https:\/\/aws.amazon.com\/blogs\/big-data\/amazon-redshift-identity-federation-with-multi-factor-authentication\/\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/aws.amazon.com\/blogs\/big-data\/amazon-redshift-identity-federation-with-multi-factor-authentication\/<\/a><\/li><\/ul>\n\n<h3 class=\"wp-block-heading\" id=\"Terms-Dictionary:\">Termen Woordenboek:<\/h3>\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><th class=\"has-text-align-left\" data-align=\"left\"><strong>Term<\/strong><\/th><th class=\"has-text-align-left\" data-align=\"left\"><strong>Betekenis<\/strong><\/th><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">Identiteitscentrum-account<\/td><td class=\"has-text-align-left\" data-align=\"left\">Het account waar het IAM Identity Center is geconfigureerd.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">Redshift-account<\/td><td class=\"has-text-align-left\" data-align=\"left\">Het child account van het Identity Center account dat het Redshift Cluster bevat waarmee we verbinding willen maken.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">IDP<\/td><td class=\"has-text-align-left\" data-align=\"left\">Identiteit Provider<\/td><\/tr><\/tbody><\/table><\/figure>\n\n<h3 class=\"wp-block-heading\" id=\"What's-Redshift?\">Wat is Redshift?<\/h3>\n\n<p><a class=\"wpil_keyword_link\" href=\"https:\/\/elementor.com\/blog\/nl\/11-beste-cloud-hosting-voor-wordpress-in-year\/\" title=\"10 Best Cloud Hosting for WordPress in 2025\" data-wpil-keyword-link=\"linked\" data-wpil-monitor-id=\"23739\">AWS<\/a> Redshift is een volledig beheerde dataopslagdienst van Amazon Web Services (AWS).<br \/>Het is ontworpen om grootschalige gegevensanalytische werklasten aan te kunnen en stelt organisaties in staat om enorme hoeveelheden gegevens snel en kosteneffectief te analyseren.<\/p>\n\n<h3 class=\"wp-block-heading\" id=\"What&#x2019;s-IAM-Identity-Center?\">Wat is IAM Identity Center?<\/h3>\n\n<p>IAM Identity Center biedt \u00e9\u00e9n plek waar je personeelsleden kunt aanmaken of koppelen en hun toegang tot al hun AWS-accounts en applicaties centraal kunt beheren.<br \/>Je kunt multi-account machtigingen gebruiken om je personeelsleden toegang te geven tot AWS-accounts.<\/p>\n\n<h3 class=\"wp-block-heading\" id=\"Why-SSO?\">Waarom SSO?<\/h3>\n\n<p>SSO <strong>vermindert het aantal aanvalsoppervlakken <\/strong>omdat gebruikers slechts eenmaal per dag inloggen en slechts \u00e9\u00e9n set inloggegevens gebruiken.<br \/>Door het inloggen te beperken tot \u00e9\u00e9n set inloggegevens wordt de beveiliging van de onderneming verbeterd.\nAls werknemers voor elke app aparte wachtwoorden moeten gebruiken, doen ze dat meestal niet. <\/p>\n\n<h2 class=\"wp-block-heading\" id=\"Prerequisites\">Vereisten<\/h2>\n\n<ol class=\"wp-block-list\"><li>Voorgeconfigureerd IAM Identity Center \u2192 <a href=\"https:\/\/docs.aws.amazon.com\/singlesignon\/latest\/userguide\/getting-started.html\" target=\"_blank\" rel=\"noreferrer noopener\">Aan de slag &#8211; AWS IAM Identity Center.<\/a><\/li><li>Voorgeconfigureerd Redshift Cluster met administratieve toegang.<\/li><li>Identity Source gebruiker en wachtwoord (Okta, PingOne, etc.).<\/li><li>JetBrains DataGrip ge\u00efnstalleerd (kan gratis zijn).<\/li><\/ol>\n\n<h2 class=\"wp-block-heading\" id=\"Step-by-Step:\">Stap voor stap:<\/h2>\n\n<h3 class=\"wp-block-heading\" id=\"Configure-Identity-Center-application\">De toepassing Identity Center configureren<\/h3>\n\n<p>Onze eerste stap is het maken van een nieuwe AWS Identity Center applicatie <strong>in het Identity Center account <\/strong>om te gebruiken als het belangrijkste kanaal tussen gebruikers en het Redshift cluster.<\/p>\n\n<ol class=\"wp-block-list\"><li>Klik in het zijpaneel van het IAM Identity Center op &#8220;Toepassingen&#8221;.<br \/><img decoding=\"async\" width=\"278\" height=\"71\" class=\"wp-image-85732\" style=\"width: 278px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.25.46.png\" alt=\"\" \/><br \/> <\/li><li>Klik rechtsboven op &#8220;Applicatie toevoegen&#8221;.<br \/><img decoding=\"async\" width=\"1402\" height=\"152\" class=\"wp-image-85733\" style=\"width: 1402px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.27.18.png\" alt=\"\" \/><\/li><li>Vink &#8220;Aangepaste SAML 2.0-toepassing toevoegen&#8221; aan en klik op &#8220;Volgende&#8221;.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1057\" height=\"178\" class=\"wp-image-85734\" style=\"width: 1057px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.28.44.png\" alt=\"\" \/><\/li><li>Stel een toepasselijke weergavenaam in, we noemen onze toepassing &#8220;Redshift-ReadOnly&#8221;, omdat deze toepassing zal worden gebruikt om alleen-lezen toegang te krijgen tot de clustergegevens.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"965\" height=\"201\" class=\"wp-image-85735\" style=\"width: 965px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.32.25.png\" alt=\"\" \/><\/li><li>Download het Identity Center SAML metadata bestand, we zullen het later gebruiken om onze Redshift account applicatie te configureren.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"872\" height=\"420\" class=\"wp-image-85736\" style=\"width: 872px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.33.39.png\" alt=\"\" \/><br \/> <\/li><li>Kopieer de aanmeldings-URL van de applicatie omdat we die later nodig hebben.<br \/><\/li><li>Vervolgens configureren we de <strong>SAML applicatie ACS<\/strong> (ook wel Assertion Consumer Service genoemd).<br \/>ACS is in het kort de locatie waar het antwoord van de SAML applicatie naartoe wordt gestuurd.<br \/><br \/>Omdat we de <strong>AWS Redshift JDBC driver<\/strong> gebruiken om verbinding te maken met ons Redshift cluster, moeten we de applicatie ACS instellen op <code>http:\/\/localhost:7890\/redshift\/<\/code> &#8211; omdat de JDBC driver standaard een server start die luistert op poort 7890.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"308\" height=\"74\" class=\"wp-image-85737\" style=\"width: 308px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.56.40.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/ab00f622-901e-48a6-af15-55b11fe407f4#media-blob-url=true&amp;id=a1039895-cc77-4376-8887-687b0a94ffae&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=74&amp;width=308&amp;alt=\" \/><\/li><li>Om de SAML application assertion te beperken tot alleen redshift, configureren we het veld &#8220;Application SAML audience&#8221; op <code>urn:amazon:webservices:redshift<\/code>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"247\" height=\"70\" class=\"wp-image-85738\" style=\"width: 247px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.58.17.png\" alt=\"\" \/> <\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Create-Identity-Provider\">Identity Provider aanmaken<\/h3>\n\n<p>Nadat we onze <strong>Redshift-ReadOnly<\/strong> applicatie hebben aangemaakt in het Identity Center account, moeten we een identity provider configureren die door de <strong>Redshift-ReadOnly <\/strong>applicatie wordt gebruikt om verbinding te maken met het Redshift account Redshift cluster.<\/p>\n\n<ol class=\"wp-block-list\"><li>Klik in het zijpaneel IAM Dashboard van uw Redshift-account op <strong>Identity Providers<\/strong>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"271\" height=\"431\" class=\"wp-image-85742\" style=\"width: 271px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.19.31.png\" alt=\"\" \/> <\/li><li>Klik rechtsboven op &#8220;Voeg provider toe&#8221;.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1328\" height=\"78\" class=\"wp-image-85743\" style=\"width: 1328px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.21.05.png\" alt=\"\" \/><br \/><\/li><li>Vul de gegevens voor de nieuwe IDP in:<ol start=\"1\"><li>Stel de &#8220;Provider name&#8221; in op Redshift-ReadOnly (hetzelfde als onze eerder geconfigureerde applicatie).<\/li><li>Upload het metadatabestand dat we downloaden tijdens het configuratieproces van onze IAM Identity Center-applicatie.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/f2db2cb3-28d0-4578-ac63-f813a350a2d9#media-blob-url=true&amp;id=af2a9aac-ed5d-4c7c-8aea-e91254cfdeaf&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=597&amp;width=866&amp;alt=\" \/>  Klik op &#8220;Voeg provider toe&#8221; en voltooi.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"866\" height=\"597\" class=\"wp-image-85744\" style=\"width: 866px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.22.59.png\" alt=\"\" \/><\/li><\/ol><\/li><li>Ga naar de IDP beschrijvingspagina en kopieer de <strong>IDP ARN<\/strong>, die gebruiken we later<strong>.<\/strong><br \/><img loading=\"lazy\" decoding=\"async\" width=\"626\" height=\"321\" class=\"wp-image-85745\" style=\"width: 626px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.04.43.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/0a06764a-c351-43f3-810a-15da912d7c05#media-blob-url=true&amp;id=39497b0d-7a31-4add-8c83-107db8043f05&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=321&amp;width=626&amp;alt=\" \/><\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Create-IAM-Role-&amp;-Policy\">IAM-rol en -beleid maken<\/h3>\n\n<p>Nu we de Identity Provider hebben aangemaakt die gebruikt gaat worden door onze IAM Identity Center applicatie, kunnen we de rol aanmaken die gebruikt gaat worden om verbinding te maken met het Redshift cluster zelf.<\/p>\n\n<ol class=\"wp-block-list\"><li>Klik in het zijpaneel IAM Dashboard van uw Redshift-account op <strong>Rollen<\/strong>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"271\" height=\"437\" class=\"wp-image-85747\" style=\"width: 271px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.14.15.png\" alt=\"\" \/> <\/li><li>Klik rechtsboven op &#8220;Rol maken&#8221;.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1341\" height=\"128\" class=\"wp-image-85748\" style=\"width: 1341px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.15.37.png\" alt=\"\" \/><br \/> <\/li><li>Maak een vertrouwde entiteit van het type SAML 2.0 federatie en stel het volgende in:<ol start=\"1\"><li>Stel de IDP in op de &#8220;Redshift-ReadOnly&#8221; IDP die we eerder hebben gemaakt.<\/li><li>Vink het keuzerondje &#8220;Alleen programmatische toegang toestaan&#8221; aan en stel in:<br \/><strong>Attribuut: &#8220;SAML:aud&#8221;<\/strong> \u2192 instellen welk publiek deze rol kan aannemen.<br \/><strong>Waarde: &#8220;<\/strong><a href=\"http:\/\/localhost:7890\/redshift\/\"><strong>http:\/\/localhost:7890\/redshift\/<\/strong><\/a><strong>&#8220;<\/strong> \u2192 de audience instellen op onze lokale Redshift JDBC driver server (zoals uitgelegd in de eerste sectie).<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1190\" height=\"780\" class=\"wp-image-85749\" style=\"width: 1190px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.44.02.png\" alt=\"\" \/><br \/>Klik op &#8220;Volgende&#8221;.<br \/><\/li><\/ol><\/li><li>Klik op &#8220;Beleid maken&#8221; en er wordt een nieuw tabblad geopend.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/5f413ee0-9082-48fe-bbf9-1266e384f039#media-blob-url=true&amp;id=f54050e8-48e9-4c67-8e16-34cb159b53b5&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=165&amp;width=1303&amp;alt=\" \/> <\/li><li>Selecteer &#8220;JSON&#8221;.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/38e95090-ae9b-4366-9c1e-4c24cab89231#media-blob-url=true&amp;id=75587102-9ee1-4ce6-abd5-c83d2c872050&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=135&amp;width=1139&amp;alt=\" \/> <\/li><li>Plak in het paneel Beleidseditor de volgende beleidsverklaring en bewerk de volgende waarden in het bereik &#8220;Hulpbron&#8221; zodat ze overeenkomen met die van jezelf: <code>&lt;region&gt;, &lt;account&gt;, &lt;clusterName&gt;<\/code>.<br \/>\t\t<div data-elementor-type=\"container\" data-elementor-id=\"85752\" class=\"elementor elementor-85752\" data-elementor-post-type=\"elementor_library\">\n\t\t\t\t<div class=\"elementor-element elementor-element-1bd19134 e-flex e-con-boxed e-con e-parent\" data-id=\"1bd19134\" data-element_type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-1630fc85 elementor-widget elementor-widget-code-highlight\" data-id=\"1630fc85\" data-element_type=\"widget\" data-widget_type=\"code-highlight.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"prismjs-tomorrow copy-to-clipboard \">\n\t\t\t<pre data-line=\"\" class=\"highlight-height language-json line-numbers\">\n\t\t\t\t<code readonly=\"true\" class=\"language-json\">\n\t\t\t\t\t<xmp>{\n    \"Version\": \"2012-10-17\",\n    \"Statement\": [\n        {\n            \"Effect\": \"Allow\",\n            \"Action\": [\n                \"redshift:CreateClusterUser\",\n                \"redshift:JoinGroup\",\n                \"redshift:GetClusterCredentials\",\n                \"redshift:ListSchemas\",\n                \"redshift:ListTables\",\n                \"redshift:ListDatabases\",\n                \"redshift:ExecuteQuery\",\n                \"redshift:FetchResults\",\n                \"redshift:CancelQuery\",\n                \"redshift:DescribeClusters\",\n                \"redshift:DescribeQuery\",\n                \"redshift:DescribeTable\"\n            ],\n            \"Resource\": [\n                \"arn:aws:redshift:<region>:<account>:cluster:<clusterName>\",\n                \"arn:aws:redshift:<region>:<account>:dbuser:<clusterName>\/${redshift:DbUser}\",\n                \"arn:aws:redshift:<region>:<account>:dbname:<clusterName>\/${redshift:DbName}\",\n                \"arn:aws:redshift:<region>:<account>:dbgroup:<clusterName>\/bi_users_group\",\n            ]\n        }\n    ]\n}<\/xmp>\n\t\t\t\t<\/code>\n\t\t\t<\/pre>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<br \/><\/li><li>Geef het beleid de naam &#8220;Redshift-ReadOnly-policy&#8221; en klik op &#8220;Beleid maken&#8221;.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/638f1d27-23e5-4a2f-8351-3f13ebf6a7f1#media-blob-url=true&amp;id=e6d9b9f7-ff16-4b5a-851e-162a99c4d39d&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=287&amp;width=1042&amp;alt=\" \/> <br \/><img loading=\"lazy\" decoding=\"async\" width=\"1042\" height=\"287\" class=\"wp-image-85756\" style=\"width: 1042px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.55.08.png\" alt=\"\" \/><\/li><li>Ga terug naar de oorsprong tab waar we begonnen met het maken van onze IAM rol<br \/>\u2192 klik op vernieuwen \u2192 typ &#8220;Redshift-ReadOnly-policy&#8221; in de zoekbalk \u2192 vink de &#8220;Redshift-ReadOnly-policy&#8221; policy aan \u2192 klik op &#8220;Volgende&#8221;.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1136\" height=\"359\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.56.59.png\" class=\"wp-image-85757\" style=\"width: 1136px\" alt=\"\" \/><\/li><li>Geef de rol de naam &#8220;Redshift-ReadOnly-role&#8221; en klik rechtsonder op &#8220;Cre\u00eber rol&#8221;.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"618\" height=\"244\" class=\"wp-image-85758\" style=\"width: 618px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.59.54.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/f0080f98-f453-40bb-83c7-24e81210a9f2#media-blob-url=true&amp;id=7ece7e5c-f65e-4144-9c4a-e4856fa6e8db&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=244&amp;width=618&amp;alt=\" \/><\/li><li>Nu we de IAM rol hebben aangemaakt, ga je naar de beschrijvingspagina en kopieer je de <strong>ARN van de rol<\/strong>, die we later zullen gebruiken.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1126\" height=\"320\" class=\"wp-image-85759\" style=\"width: 1126px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.08.58.png\" alt=\"\" \/><\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Configure-the-IAM-Identity-Center-Application-Attributes\">De IAM Identity Center Application Attributes configureren<\/h3>\n\n<p>Om onze applicatie te configureren om met Redshift te werken, moeten we enkele applicatieattributen configureren die ons zullen helpen &#8220;hoe ermee te verbinden&#8221;.<\/p>\n\n<ol class=\"wp-block-list\"><li>Ga in het IAM Identity Center naar het paneel Applications en kies de applicatie die we eerder hebben gemaakt.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"880\" height=\"506\" class=\"wp-image-85761\" style=\"width: 880px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.21.15.png\" alt=\"\" \/><br \/> <\/li><li>Wijs gebruikers en groepen toe die je rechten wilt geven op deze applicatie \u2192 <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/singlesignon\/latest\/userguide\/assignuserstoapp.html\" target=\"_blank\">Wijs gebruikerstoegang toe aan applicaties in de IAM Identity Center console &#8211; AWS IAM Identity Center (opvolger van AWS Single Sign-On)<\/a>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1368\" height=\"419\" class=\"wp-image-85762\" style=\"width: 1368px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.25.48.png\" alt=\"\" \/><br \/> <\/li><li>Klik op &#8220;attribuutkoppelingen&#8221;.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1395\" height=\"345\" class=\"wp-image-85763\" style=\"width: 1395px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.27.54.png\" alt=\"\" \/> <\/li><li>Stel de attributen in volgens de volgende tabel en vervang de plaatshouder <code>&lt;role_arn&gt;<\/code> &amp; <code>&lt;idp_arn&gt;<\/code> door de ARN&#8217;s die je in de vorige stappen hebt gekopieerd:<\/li><\/ol>\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><th class=\"has-text-align-left\" data-align=\"left\"><strong>Attribuut<\/strong><\/th><th class=\"has-text-align-left\" data-align=\"left\"><strong>Waarde<\/strong><\/th><th class=\"has-text-align-left\" data-align=\"left\"><strong>Uitleg<\/strong><\/th><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">Onderwerp (standaardkenmerk)<\/td><td class=\"has-text-align-left\" data-align=\"left\">${user:email}<\/td><td class=\"has-text-align-left\" data-align=\"left\">Het onderwerp gebruikt.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/aws.amazon.com\/SAML\/Attributes\/RoleSessionName<\/td><td class=\"has-text-align-left\" data-align=\"left\">${user:email}<\/td><td class=\"has-text-align-left\" data-align=\"left\">De sessienaam die tegen het cluster is aangemaakt.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/redshift.amazon.com\/SAML\/Attributes\/AutoCreate<\/td><td class=\"has-text-align-left\" data-align=\"left\">true<\/td><td class=\"has-text-align-left\" data-align=\"left\">Configureer de applicatie om de Redshift gebruiker automatisch aan te maken bij authenticatie.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/aws.amazon.com\/SAML\/Attributes\/Role<\/td><td class=\"has-text-align-left\" data-align=\"left\">,<\/td><td class=\"has-text-align-left\" data-align=\"left\">De IAM-rol en IDP die moeten worden gebruikt om verbinding te maken met Redshift.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/redshift.amazon.com\/SAML\/Attributes\/DbUser<\/td><td class=\"has-text-align-left\" data-align=\"left\">${user:email}<\/td><td class=\"has-text-align-left\" data-align=\"left\">De DB gebruikersnaam die moet worden aangemaakt.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/redshift.amazon.com\/SAML\/Attributes\/DbGroups<\/td><td class=\"has-text-align-left\" data-align=\"left\">alleen-lezen<\/td><td class=\"has-text-align-left\" data-align=\"left\">De DB-groep om de nieuw aangemaakte gebruiker aan toe te wijzen.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1406\" height=\"716\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.38.32.png\" alt=\"\" class=\"wp-image-85764\" \/><\/figure>\n\n<p>Klik op &#8220;Wijzigingen opslaan&#8221;.<\/p>\n\n<h3 class=\"wp-block-heading\" id=\"Create-Redshift-group-&amp;-Grant-permissions\">Redshift-groep aanmaken &amp; rechten toekennen<\/h3>\n\n<p>In deze fase configureren we de <code>readonly<\/code> Redshift groep (zoals gedefinieerd in de Applicatie attributen in de vorige fase) waaraan elke gebruiker wordt toegewezen wanneer hij verbinding maakt via de applicatie.<\/p>\n\n<ol class=\"wp-block-list\"><li>Maak verbinding met je Redshift cluster met een bevoorrechte gebruiker (superuser).<\/li><li>Voer het volgende SQL script uit om de <code>readonly<\/code> groep aan te maken en <code>read<\/code> rechten toe te kennen aan het public schema (het standaard schema).<br \/>\t\t<div data-elementor-type=\"container\" data-elementor-id=\"85766\" class=\"elementor elementor-85766\" data-elementor-post-type=\"elementor_library\">\n\t\t\t\t<div class=\"elementor-element elementor-element-13d86d9a e-flex e-con-boxed e-con e-parent\" data-id=\"13d86d9a\" data-element_type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-885ec86 elementor-widget elementor-widget-code-highlight\" data-id=\"885ec86\" data-element_type=\"widget\" data-widget_type=\"code-highlight.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"prismjs-tomorrow copy-to-clipboard \">\n\t\t\t<pre data-line=\"\" class=\"highlight-height language-sql line-numbers\">\n\t\t\t\t<code readonly=\"true\" class=\"language-sql\">\n\t\t\t\t\t<xmp>create group readonly;\ngrant usage on schema public to group readonly;\ngrant select on all tables in schema public to group readonly;<\/xmp>\n\t\t\t\t<\/code>\n\t\t\t<\/pre>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Configure-the-DataGrip-client-Data-Source\">De DataGrip-clientgegevensbron configureren<\/h3>\n\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/elementor.com\/cdn-cgi\/image\/f=auto,w=20,h=20https:\/\/elementor.atlassian.net\/gateway\/api\/emoji\/bc79594b-ab29-4483-8266-81959ca3f62f\/1f389\/path\" alt=\":tada:\" width=\"20\" height=\"20\" \/>  We zijn er helemaal klaar voor en staan eindelijk op het punt om onze vruchten te oogsten!  <img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/elementor.atlassian.net\/gateway\/api\/emoji\/bc79594b-ab29-4483-8266-81959ca3f62f\/1f389\/path\" alt=\":tada:\" width=\"20\" height=\"20\" \/><br \/>In deze stap configureren we een DataGrip databron die zal worden gebruikt als de verbinding tussen ons en het Redshift cluster.<\/p>\n\n<ol class=\"wp-block-list\"><li>Open DataGrip en maak een nieuwe Redshift databron aan.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"467\" height=\"114\" class=\"wp-image-85769\" style=\"width: 467px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.52.46.png\" alt=\"\" \/> <\/li><li>Er wordt een gegevensbronwizard geopend waarin je de verbinding kunt configureren en de volgende attributen kunt instellen:<ol start=\"1\"><li><strong>Naam<\/strong>: Redshift ReadOnly SSO.<\/li><li><strong>Host<\/strong>:<strong> <\/strong>je Redshift server endpoint.<\/li><li><strong>User<\/strong>: uw email identifier (wordt gebruikt als de Redshift DB User).<\/li><li><strong>Wachtwoord<\/strong>: het wachtwoord dat je hebt ingesteld in je Identity Source (Okta, PingOne, etc.).<\/li><li><strong>Database<\/strong>: de database waarmee je verbinding wilt maken.<\/li><li><strong>URL<\/strong>: de url is op dit punt al grotendeels geconfigureerd (vanwege de DataGrip auto-fill), het enige wat je nog hoeft te doen is de JDBC url prefix te veranderen van <code>jdbc:redshift:\/\/<\/code> in <code>jdbc:redshift:iam:\/\/<\/code>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"559\" height=\"671\" class=\"wp-image-85770\" style=\"width: 559px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.57.29.png\" alt=\"\" \/> <\/li><\/ol><\/li><li>Ga naar het tabblad <code>Advanced<\/code> en configureer deze 3 attributen:<ol start=\"1\"><li><strong>plugin_name<\/strong>: <code>com.amazon.redshift.plugin.BrowserSamlCredentialsProvider<\/code> &#8211; al gedefinieerd, dus bewerk het.<\/li><li><strong>idp_reponse_timeout: <\/strong>60 &#8211; maak een nieuwe waarde.<\/li><li><strong>login_url<\/strong>: &lt;je eerder gekopieerde SAML applicatie login url&gt; &#8211; maak een nieuwe waarde.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"547\" height=\"245\" class=\"wp-image-85771\" style=\"width: 547px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.10.07.png\" alt=\"\" \/> <\/li><\/ol><\/li><li>Klik onderin de configuratiewizard voor de gegevensbron op &#8220;test verbinding&#8221;.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"549\" height=\"88\" class=\"wp-image-85772\" style=\"width: 549px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.11.44.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/938ff2bb-46c7-4cd9-9020-aa00b134d7b5#media-blob-url=true&amp;id=ec78f4d0-c3c0-4743-8a1d-e5568685c9e7&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=88&amp;width=549&amp;alt=\" \/><br \/>Eenmaal geklikt zal je browser openen en het volgende scherm weergeven:<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1156\" height=\"197\" class=\"wp-image-85773\" style=\"width: 1156px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.14.29.png\" alt=\"\" \/><br \/>Als alles goed is geconfigureerd, zou je het volgende moeten zien verschijnen in DataGrip:<br \/><img loading=\"lazy\" decoding=\"async\" width=\"467\" height=\"215\" class=\"wp-image-85774\" style=\"width: 467px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.14.34.png\" alt=\"\" \/><img decoding=\"async\" src=\"https:\/\/elementor.atlassian.net\/8b152b94-3cbd-465a-a56f-6cfc8cec2c19#media-blob-url=true&amp;id=ac42272d-34e4-46b6-9ec4-57583deb1983&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=215&amp;width=467&amp;alt=\" alt=\"\" \/><br \/>Klik op OK.<br \/><br \/>Dat was het!\nBedankt voor het lezen \ud83d\ude42 <\/li><\/ol>\n","protected":false},"excerpt":{"rendered":"<p>Is je verbinding met Redshift veilig genoeg?<br \/>\nIn deze stap-voor-stap handleiding leer je hoe je de beveiliging kunt verbeteren en gebruikerstoegang kunt stroomlijnen door SSO-authenticatie in te stellen met Redshift en AWS IAM Identity Center. <\/p>\n","protected":false},"author":2024233,"featured_media":112705,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[286],"tags":[],"marketing_persona":[],"marketing_intent":[],"class_list":["post-112704","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-development-nl"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.7 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)<\/title>\n<meta name=\"description\" content=\"Is je verbinding met Redshift veilig genoeg? In deze stap-voor-stap handleiding leer je hoe je de beveiliging kunt verbeteren en gebruikerstoegang kunt stroomlijnen door SSO-authenticatie in te stellen met Redshift en AWS IAM Identity Center.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/\" \/>\n<meta property=\"og:locale\" content=\"nl_NL\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)\" \/>\n<meta property=\"og:description\" content=\"Is je verbinding met Redshift veilig genoeg? In deze stap-voor-stap handleiding leer je hoe je de beveiliging kunt verbeteren en gebruikerstoegang kunt stroomlijnen door SSO-authenticatie in te stellen met Redshift en AWS IAM Identity Center.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/elemntor\/\" \/>\n<meta property=\"article:published_time\" content=\"2023-07-25T13:23:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-12-01T11:17:47+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\" \/>\n\t<meta property=\"og:image:width\" content=\"2400\" \/>\n\t<meta property=\"og:image:height\" content=\"1260\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Yuval Press\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@elemntor\" \/>\n<meta name=\"twitter:site\" content=\"@elemntor\" \/>\n<meta name=\"twitter:label1\" content=\"Geschreven door\" \/>\n\t<meta name=\"twitter:data1\" content=\"Yuval Press\" \/>\n\t<meta name=\"twitter:label2\" content=\"Geschatte leestijd\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minuten\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/\"},\"author\":{\"name\":\"Yuval Press\",\"@id\":\"https:\/\/elementor.com\/blog\/nl\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410\"},\"headline\":\"Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)\",\"datePublished\":\"2023-07-25T13:23:00+00:00\",\"dateModified\":\"2025-12-01T11:17:47+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/\"},\"wordCount\":1336,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/elementor.com\/blog\/nl\/#organization\"},\"image\":{\"@id\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"articleSection\":[\"Ontwikkeling\"],\"inLanguage\":\"nl-NL\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/\",\"url\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/\",\"name\":\"Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)\",\"isPartOf\":{\"@id\":\"https:\/\/elementor.com\/blog\/nl\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"datePublished\":\"2023-07-25T13:23:00+00:00\",\"dateModified\":\"2025-12-01T11:17:47+00:00\",\"description\":\"Is je verbinding met Redshift veilig genoeg? In deze stap-voor-stap handleiding leer je hoe je de beveiliging kunt verbeteren en gebruikerstoegang kunt stroomlijnen door SSO-authenticatie in te stellen met Redshift en AWS IAM Identity Center.\",\"breadcrumb\":{\"@id\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#breadcrumb\"},\"inLanguage\":\"nl-NL\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"nl-NL\",\"@id\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#primaryimage\",\"url\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"contentUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"width\":2400,\"height\":1260},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Blog\",\"item\":\"https:\/\/elementor.com\/blog\/nl\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Ontwikkeling\",\"item\":\"https:\/\/elementor.com\/blog\/nl\/category\/development-nl\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/elementor.com\/blog\/nl\/#website\",\"url\":\"https:\/\/elementor.com\/blog\/nl\/\",\"name\":\"Elementor\",\"description\":\"Website Builder for WordPress\",\"publisher\":{\"@id\":\"https:\/\/elementor.com\/blog\/nl\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/elementor.com\/blog\/nl\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"nl-NL\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/elementor.com\/blog\/nl\/#organization\",\"name\":\"Elementor\",\"url\":\"https:\/\/elementor.com\/blog\/nl\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"nl-NL\",\"@id\":\"https:\/\/elementor.com\/blog\/nl\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png\",\"contentUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png\",\"width\":225,\"height\":225,\"caption\":\"Elementor\"},\"image\":{\"@id\":\"https:\/\/elementor.com\/blog\/nl\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/elemntor\/\",\"https:\/\/x.com\/elemntor\",\"https:\/\/www.instagram.com\/elementor\/\",\"https:\/\/www.youtube.com\/channel\/UCt9kG_EDX8zwGSC1-ycJJVA?sub_confirmation=1\",\"https:\/\/en.wikipedia.org\/wiki\/Elementor\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/elementor.com\/blog\/nl\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410\",\"name\":\"Yuval Press\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"nl-NL\",\"@id\":\"https:\/\/elementor.com\/blog\/nl\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g\",\"caption\":\"Yuval Press\"},\"description\":\"Senior DataOps Engineer. A long-time fan of professional challenges, endlessly fascinated with the latest technologies. Especially Passionate about the security aspect of DevOps.\",\"url\":\"https:\/\/elementor.com\/blog\/nl\/author\/yuvalp\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)","description":"Is je verbinding met Redshift veilig genoeg? In deze stap-voor-stap handleiding leer je hoe je de beveiliging kunt verbeteren en gebruikerstoegang kunt stroomlijnen door SSO-authenticatie in te stellen met Redshift en AWS IAM Identity Center.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/","og_locale":"nl_NL","og_type":"article","og_title":"Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)","og_description":"Is je verbinding met Redshift veilig genoeg? In deze stap-voor-stap handleiding leer je hoe je de beveiliging kunt verbeteren en gebruikerstoegang kunt stroomlijnen door SSO-authenticatie in te stellen met Redshift en AWS IAM Identity Center.","og_url":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/","og_site_name":"Blog","article_publisher":"https:\/\/www.facebook.com\/elemntor\/","article_published_time":"2023-07-25T13:23:00+00:00","article_modified_time":"2025-12-01T11:17:47+00:00","og_image":[{"width":2400,"height":1260,"url":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","type":"image\/png"}],"author":"Yuval Press","twitter_card":"summary_large_image","twitter_creator":"@elemntor","twitter_site":"@elemntor","twitter_misc":{"Geschreven door":"Yuval Press","Geschatte leestijd":"7 minuten"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#article","isPartOf":{"@id":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/"},"author":{"name":"Yuval Press","@id":"https:\/\/elementor.com\/blog\/nl\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410"},"headline":"Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)","datePublished":"2023-07-25T13:23:00+00:00","dateModified":"2025-12-01T11:17:47+00:00","mainEntityOfPage":{"@id":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/"},"wordCount":1336,"commentCount":0,"publisher":{"@id":"https:\/\/elementor.com\/blog\/nl\/#organization"},"image":{"@id":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#primaryimage"},"thumbnailUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","articleSection":["Ontwikkeling"],"inLanguage":"nl-NL","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/","url":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/","name":"Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)","isPartOf":{"@id":"https:\/\/elementor.com\/blog\/nl\/#website"},"primaryImageOfPage":{"@id":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#primaryimage"},"image":{"@id":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#primaryimage"},"thumbnailUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","datePublished":"2023-07-25T13:23:00+00:00","dateModified":"2025-12-01T11:17:47+00:00","description":"Is je verbinding met Redshift veilig genoeg? In deze stap-voor-stap handleiding leer je hoe je de beveiliging kunt verbeteren en gebruikerstoegang kunt stroomlijnen door SSO-authenticatie in te stellen met Redshift en AWS IAM Identity Center.","breadcrumb":{"@id":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#breadcrumb"},"inLanguage":"nl-NL","potentialAction":[{"@type":"ReadAction","target":["https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/"]}]},{"@type":"ImageObject","inLanguage":"nl-NL","@id":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#primaryimage","url":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","contentUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","width":2400,"height":1260},{"@type":"BreadcrumbList","@id":"https:\/\/elementor.com\/blog\/nl\/redshift-sso-authenticatie-inschakelen-met-aws-iam-identity-center-multi-account\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https:\/\/elementor.com\/blog\/nl\/"},{"@type":"ListItem","position":2,"name":"Ontwikkeling","item":"https:\/\/elementor.com\/blog\/nl\/category\/development-nl\/"},{"@type":"ListItem","position":3,"name":"Redshift SSO-authenticatie inschakelen met AWS IAM Identity Center (Multi-Account)"}]},{"@type":"WebSite","@id":"https:\/\/elementor.com\/blog\/nl\/#website","url":"https:\/\/elementor.com\/blog\/nl\/","name":"Elementor","description":"Website Builder for WordPress","publisher":{"@id":"https:\/\/elementor.com\/blog\/nl\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/elementor.com\/blog\/nl\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"nl-NL"},{"@type":"Organization","@id":"https:\/\/elementor.com\/blog\/nl\/#organization","name":"Elementor","url":"https:\/\/elementor.com\/blog\/nl\/","logo":{"@type":"ImageObject","inLanguage":"nl-NL","@id":"https:\/\/elementor.com\/blog\/nl\/#\/schema\/logo\/image\/","url":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png","contentUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png","width":225,"height":225,"caption":"Elementor"},"image":{"@id":"https:\/\/elementor.com\/blog\/nl\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/elemntor\/","https:\/\/x.com\/elemntor","https:\/\/www.instagram.com\/elementor\/","https:\/\/www.youtube.com\/channel\/UCt9kG_EDX8zwGSC1-ycJJVA?sub_confirmation=1","https:\/\/en.wikipedia.org\/wiki\/Elementor"]},{"@type":"Person","@id":"https:\/\/elementor.com\/blog\/nl\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410","name":"Yuval Press","image":{"@type":"ImageObject","inLanguage":"nl-NL","@id":"https:\/\/elementor.com\/blog\/nl\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g","caption":"Yuval Press"},"description":"Senior DataOps Engineer. A long-time fan of professional challenges, endlessly fascinated with the latest technologies. Especially Passionate about the security aspect of DevOps.","url":"https:\/\/elementor.com\/blog\/nl\/author\/yuvalp\/"}]}},"_links":{"self":[{"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/posts\/112704","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/users\/2024233"}],"replies":[{"embeddable":true,"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/comments?post=112704"}],"version-history":[{"count":2,"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/posts\/112704\/revisions"}],"predecessor-version":[{"id":145674,"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/posts\/112704\/revisions\/145674"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/media\/112705"}],"wp:attachment":[{"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/media?parent=112704"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/categories?post=112704"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/tags?post=112704"},{"taxonomy":"marketing_persona","embeddable":true,"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/marketing_persona?post=112704"},{"taxonomy":"marketing_intent","embeddable":true,"href":"https:\/\/elementor.com\/blog\/nl\/wp-json\/wp\/v2\/marketing_intent?post=112704"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}